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This listing of claims will replace all prior versions, and listings, of claims 
in the application. 

Listing of Claims; 

Claim 1 (Previously presented): A method comprising: 
generating a policy digest for a cached policy that applies to a client, the 
policy digest identifying at least one assertion the client is complying with; and 
including the policy digest in a request by the client to access a resource. 

Claim 2 (Original): The method of claim 1, wherein generating the 

policy digest includes generating a hash of the cached policy. 

Claim 3 (Original): The method of claim 1, wherein generating the 

policy digest includes encoding a bit vector identifying selected assertions from the 
cached policy. 

Claim 4 (Original): The method of claim 1, wherein generating the 

policy digest includes reading an assertion from the policy, assigning a bit value to 
the assertion, and writing the bit value to a bit vector. 

Claim 5 (Original): The method of claim 1, wherein generating the 

policy digest includes generating a hash of the cached policy if the cached policy is 
normalized. 
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Claim 6 (Original): The method of claim 1, further comprising: 

incrementing a counter each time the cached policy is used; and 
removing the cached policy from a cache at the client when the counter 
exceeds a limit value. 

Claim 7 (Original): The method of claim 1, further comprising: 

incrementing a counter for the cached policy when a fault is received at the 

client in response to using the cached policy; and 

removing the cached policy from a cache at the client when the counter 

exceeds a limit value. 

Claim 8 (Original): The method of claim 1, further comprising 

logging a diagnostic event when a fault is received at the client to identify a system 
problem. 

Claim 9 (Previously presented): A method comprising: 
extracting at a host a policy digest identifying a cached policy that applies 
to a client, the policy digest included in a request to access a resource; and 

denying access to the resource if the policy digest identifies an invalid 

policy. 

Claim 10 (Original): The method of claim 9, further comprising 

issuing a fault for the client if the policy digest identifies an invalid policy. 
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Claim 1 1 (Original): The method of claim 9, further comprising 

decoding the policy digest. 

Claim 12 (Original): The method of claim 9, further comprising 

decoding a bit vector of the cached policy. 

Claim 13 (Original): The method of claim 9, further comprising 

reading an assertion from the policy digest. 

Claim 14 (Original): The method of claim 9, further comprising 

reading a row hash of the cached policy. 

Claim 15 (Previously presented): A system comprising: 

a policy digest identifying at least one cached policy that applies to a client; 

and 

a messaging module denying access to a resource if the policy digest 
identifies an invalid policy for the resource. 

Claim 16 (Original): The system of claim 15, wherein the messaging 

module extracts the policy digest from a message requesting access to the resource. 

Claim 17 (Original): The system of claim 15, wherein the messaging 

module decodes the policy digest. 
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Claim 18 (Original): The system of claim 15, wherein the policy 

digest is a bit vector of a cached policy. 

Claim 19 (Original): The system of claim 15, wherein the policy 

digest is a row hash of a normalized policy. 

Claim 20 (Original): The system of claim 15, wherein the policy 

digest identifies at least one selected assertion. 

Claim 21 (Previously presented): A system comprising: 

a policy digest for a cached policy that applies to a client, the policy digest 

identifying at least one assertion the client is complying with; and 

a messaging module including the policy digest in a request by the client to 

access a resource. 

Claim 22 (Original): The system of claim 21, wherein the messaging 
module encodes the policy digest. 

Claim 23 (Original): The system of claim 21, wherein the policy 

digest is a bit vector of a cached policy. 

Claim 24 (Original): The system of claim 21, wherein the policy 

digest is a row hash of a normalized policy. 



5 



1 

2 
3 
4 
5 
6 
7 
X 
9 
10 
II 
12 
13 
14 
15 
16 
17 
IX 
19 
20 
21 
22 

24 
25 



Claim 25 (Original): The system of claim 21, wherein the policy 

digest identifies at least one assertion selected by the client. 

Claim 26 (Previously presented): A computer program product encoding a 
computer program for executing on a computer system a computer process, the 
computer process comprising: 

generating a policy digest for a cached policy that applies to a client, the 
policy digest identifying at least one assertion the client is complying with; and 

including the policy digest in a request by the client to access a resource. 

Claim 27 (Original): The computer program product of claim 26 
wherein the computer process further comprises generating a hash of the cached 
policy. 

Claim 28 (Original): The computer program product of claim 26 
wherein the computer process further comprises encoding a bit vector of the 
cached policy. 

Claim 29 (Original): The computer program product of claim 26 

wherein the computer process further comprises reading an assertion from the 
policy, assigning a bit value to the assertion, and writing the bit value to a bit 
vector. 
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Claim 30 (Original): The computer program product of claim 26 

wherein the computer process further comprises generating a row hash of the 
cached policy if the cached policy is normalized. 

Claim 31 (Original): The computer program product of claim 26, 

wherein the computer process further comprises: 

incrementing a counter each time the cached policy is used; and 

removing the cached policy from a cache at the client when the counter 

exceeds a limit value. 

Claim 32 (Original): The computer program product of claim 26 
wherein the computer process further comprises: 

incrementing a counter for the cached policy when a fault is received at the 
client in response to using the cached policy; and 

removing the cached policy from a cache at the client when the counter 
exceeds a limit value. 

Claim 33 (Original): The computer program product of claim 26 
wherein the computer process further comprises triggering a diagnostic event when 
a fault is received at the client. 
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Claim 34 (Previously presented): A computer program product encoding a 
computer program for executing on a computer system a computer process, the 
computer process comprising: 

extracting at a host a policy digest identifying a cached policy that applies 
to a client, the policy digest included in a request to access a resource; and 

denying access to the resource if the policy digest identifies an invalid 

policy. 

Claim 35 (Original): The computer program product of claim 34 
wherein the computer process further comprises decoding the policy digest. 

Claim 36 (Original): The computer program product of claim 34 
wherein the computer process further comprises decoding a bit vector of the 
cached policy. 

Claim 37 (Original): The computer program product of claim 34 
wherein the computer process further comprises reading an assertion from the 
policy digest. 

Claim 38 (Original): The computer program product of claim 34 

wherein the computer process further comprises reading a row hash of the cached 
policy if the cached policy is normalized. 
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